GB2617492B - Secure sharing of credential information - Google Patents

Secure sharing of credential information Download PDF

Info

Publication number
GB2617492B
GB2617492B GB2309732.2A GB202309732A GB2617492B GB 2617492 B GB2617492 B GB 2617492B GB 202309732 A GB202309732 A GB 202309732A GB 2617492 B GB2617492 B GB 2617492B
Authority
GB
United Kingdom
Prior art keywords
credential information
secure sharing
sharing
secure
credential
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
GB2309732.2A
Other versions
GB2617492A (en
GB202309732D0 (en
Inventor
J Grainger Morgan
Fenenga Russell
K Leventhal Brandon
Dugar Sourabh
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Apple Inc
Original Assignee
Apple Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US17/031,609 external-priority patent/US11606217B2/en
Application filed by Apple Inc filed Critical Apple Inc
Priority to GB2313977.7A priority Critical patent/GB2619447B/en
Publication of GB202309732D0 publication Critical patent/GB202309732D0/en
Publication of GB2617492A publication Critical patent/GB2617492A/en
Application granted granted Critical
Publication of GB2617492B publication Critical patent/GB2617492B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • G06F21/335User authentication using certificates for accessing specific resources, e.g. using Kerberos tickets
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • G06F21/35User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3227Aspects of commerce using mobile devices [M-devices] using secure elements embedded in M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L51/00User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
    • H04L51/04Real-time or near real-time messaging, e.g. instant messaging [IM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/033Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q2220/00Business processing using cryptography

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • Signal Processing (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Finance (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
GB2309732.2A 2020-05-29 2021-05-24 Secure sharing of credential information Active GB2617492B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
GB2313977.7A GB2619447B (en) 2020-05-29 2021-05-24 Secure sharing of credential information

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US202063032501P 2020-05-29 2020-05-29
US17/031,609 US11606217B2 (en) 2020-05-29 2020-09-24 Secure sharing of credential information
GB2213693.1A GB2608334B (en) 2020-05-29 2021-05-24 Secure sharing of credential information

Publications (3)

Publication Number Publication Date
GB202309732D0 GB202309732D0 (en) 2023-08-09
GB2617492A GB2617492A (en) 2023-10-11
GB2617492B true GB2617492B (en) 2024-05-29

Family

ID=76637687

Family Applications (4)

Application Number Title Priority Date Filing Date
GB2107380.4A Active GB2600201B (en) 2020-05-29 2021-05-24 Secure sharing of credential information
GB2213693.1A Active GB2608334B (en) 2020-05-29 2021-05-24 Secure sharing of credential information
GB2309732.2A Active GB2617492B (en) 2020-05-29 2021-05-24 Secure sharing of credential information
GB2313977.7A Active GB2619447B (en) 2020-05-29 2021-05-24 Secure sharing of credential information

Family Applications Before (2)

Application Number Title Priority Date Filing Date
GB2107380.4A Active GB2600201B (en) 2020-05-29 2021-05-24 Secure sharing of credential information
GB2213693.1A Active GB2608334B (en) 2020-05-29 2021-05-24 Secure sharing of credential information

Family Applications After (1)

Application Number Title Priority Date Filing Date
GB2313977.7A Active GB2619447B (en) 2020-05-29 2021-05-24 Secure sharing of credential information

Country Status (3)

Country Link
US (3) US12022011B2 (en)
DE (1) DE102021205263A1 (en)
GB (4) GB2600201B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20220209954A1 (en) * 2020-12-24 2022-06-30 Samsung Electronics Co., Ltd. Electronic device for sharing id and password, method for operating thereof, and server

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20180285875A1 (en) * 2017-03-31 2018-10-04 Simon Law Static token systems and methods for representing dynamic real credentials
US20190318345A1 (en) * 2018-04-13 2019-10-17 Mastercard International Incorporated Method and system for facilitating designated payment transaction

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7441116B2 (en) 2002-12-30 2008-10-21 International Business Machines Corporation Secure resource distribution through encrypted pointers
US20080065532A1 (en) * 2004-11-22 2008-03-13 De La Motte Alan L Revenue-producing bank card system & method providing the functionality & protection of trust-connected banking
US20090132813A1 (en) * 2007-11-08 2009-05-21 Suridx, Inc. Apparatus and Methods for Providing Scalable, Dynamic, Individualized Credential Services Using Mobile Telephones
US9122895B2 (en) 2008-06-25 2015-09-01 Microsoft Technology Licensing, Llc Authorization for transient storage devices with multiple authentication silos
US8176328B2 (en) 2008-09-17 2012-05-08 Alcatel Lucent Authentication of access points in wireless local area networks
US20120239936A1 (en) 2009-12-18 2012-09-20 Nokia Corporation Credential transfer
US9400978B2 (en) 2010-04-09 2016-07-26 Paypal, Inc. Methods and systems for selecting accounts and offers in payment transactions
CN103155613B (en) 2010-10-21 2016-09-07 诺基亚技术有限公司 For the method and apparatus providing access certificate
US20130091353A1 (en) 2011-08-01 2013-04-11 General Instrument Corporation Apparatus and method for secure communication
US10510073B2 (en) 2013-08-08 2019-12-17 Visa International Service Association Methods and systems for provisioning mobile devices with payment credentials
CN106462842B (en) 2014-05-07 2021-06-25 维萨国际服务协会 Enhanced data interface for contactless communication
US11017384B2 (en) 2014-05-29 2021-05-25 Apple Inc. Apparatuses and methods for using a primary user device to provision credentials onto a secondary user device
US9082018B1 (en) 2014-09-30 2015-07-14 Google Inc. Method and system for retroactively changing a display characteristic of event indicators on an event timeline
US10783565B2 (en) 2014-10-30 2020-09-22 Ebay Inc. Method, manufacture, and system of transferring authenticated sessions and states between electronic devices
US9729541B2 (en) 2015-03-31 2017-08-08 Here Global B.V. Method and apparatus for migrating encrypted data
WO2017004470A1 (en) 2015-06-30 2017-01-05 Visa International Service Association Mutual authentication of confidential communication
US10755270B2 (en) 2016-09-16 2020-08-25 Apple Inc. Inter-device credential transfer
US11544710B2 (en) 2017-06-02 2023-01-03 Apple Inc. Provisioning credentials on multiple electronic devices
US10958446B2 (en) 2018-01-11 2021-03-23 Intel Corporation Secure wireless network association
CN112740207A (en) * 2018-08-22 2021-04-30 维萨国际服务协会 Method and system for token provisioning and processing
SG11201909861UA (en) 2019-04-08 2019-11-28 Alibaba Group Holding Ltd Transferring digital tickets based on blockchain networks
US11606217B2 (en) 2020-05-29 2023-03-14 Apple Inc. Secure sharing of credential information

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20180285875A1 (en) * 2017-03-31 2018-10-04 Simon Law Static token systems and methods for representing dynamic real credentials
US20190318345A1 (en) * 2018-04-13 2019-10-17 Mastercard International Incorporated Method and system for facilitating designated payment transaction

Also Published As

Publication number Publication date
GB2619447A (en) 2023-12-06
US20230269097A1 (en) 2023-08-24
US12041185B2 (en) 2024-07-16
US12088740B2 (en) 2024-09-10
GB2600201B (en) 2022-11-02
GB202107380D0 (en) 2021-07-07
US20230014473A1 (en) 2023-01-19
GB2617492A (en) 2023-10-11
DE102021205263A1 (en) 2021-12-02
US20230269098A1 (en) 2023-08-24
GB2608334B (en) 2023-08-23
GB202309732D0 (en) 2023-08-09
US12022011B2 (en) 2024-06-25
GB2608334A (en) 2022-12-28
GB2600201A (en) 2022-04-27
GB2619447B (en) 2024-09-11
GB202313977D0 (en) 2023-10-25
GB202213693D0 (en) 2022-11-02

Similar Documents

Publication Publication Date Title
GB2615983B (en) Secure re-encryption of homomorphically encrypted data
EP3698529A4 (en) Permissions from entities to access information
EP4285545A4 (en) Authenticated modification of blockchain-based data
SG11202105431VA (en) Sharing secure memory across multiple security domains
GB202017391D0 (en) Layered stochastic anonymization of data
EP3566166A4 (en) Management of security vulnerabilities
GB2601906B (en) Implementing opportunistic authentication of encrypted data
GB2617492B (en) Secure sharing of credential information
GB202110039D0 (en) Data privacy system
IL288831A (en) Dynamic encryption/decryption of genomic information
EP4233267A4 (en) Privacy-preserving identity data exchange
SG11202101414QA (en) System and method for secret sharing of files
EP3881583A4 (en) Security of authentication data on mobile devices
GB202012345D0 (en) Cyber security-based certification of IoT devices
EP4196942A4 (en) Identity authentication
GB202309733D0 (en) Secure sharing of credential information
GB2603621B (en) Management of shared authentication credentials
IL285790A (en) Verifiable access credential
EP3486861A4 (en) Inter-company information sharing system and inter-company information sharing method
EP3711334A4 (en) Exchange of ul interference detection related information
GB202010838D0 (en) Sharing data structures
GB202218556D0 (en) Security credential
GB2609394B (en) Selective data sharing
GB202108455D0 (en) Sharing of experience without communication of data or knowledge
GB202103624D0 (en) Provision of information on clothes-hangars